package server

import (
	"log"
	"net/http"
	"os"
	"shap-planner-backend/auth"
	"shap-planner-backend/config"
	"shap-planner-backend/handlers"
)

type Server struct {
	Port         string
	JWTSecret    []byte
	DatabasePath string
}

var cfg, _ = config.LoadConfig()

func InitServer() *Server {

	err := config.CheckIfExists()
	if err != nil {
		log.Fatal(err)
		return nil
	}

	cfg, err := config.LoadConfig()
	if err != nil {
		log.Fatal(err)
		return nil
	}

	jwtSecret := os.Getenv("SHAP_JWT_SECRET")
	if jwtSecret == "" {
		log.Fatal("SHAP_JWT_SECRET environment variable not set.")
		return nil
	}
	if len(jwtSecret) < 32 {
		log.Fatal("SHAP_JWT_SECRET must be at least 32 characters long.")
		return nil
	}

	return &Server{
		Port:         cfg.Port,
		JWTSecret:    []byte(jwtSecret),
		DatabasePath: cfg.DatabasePath,
	}
}

func (server *Server) Run() {
	log.Println("Starting server...")
	mux := http.NewServeMux()

	// Public
	mux.HandleFunc("/api/login", handlers.Login)
	mux.HandleFunc("/api/register", handlers.Register)
	mux.HandleFunc("/api/refresh", handlers.RefreshToken)
	mux.HandleFunc("/api/logout", handlers.Logout)

	// Login required
	mux.Handle("/api/expenses", auth.AuthMiddleware(server.JWTSecret)(http.HandlerFunc(handlers.Expenses)))
	mux.Handle("/api/ping", auth.AuthMiddleware(server.JWTSecret)(http.HandlerFunc(handlers.TestHandler)))

	// Admin-only
	mux.Handle("/api/admin", auth.AuthMiddleware(server.JWTSecret)(auth.RequireRole("admin")(http.HandlerFunc(handlers.AdminPanel))))

	log.Printf("Listening on port %s", server.Port)
	log.Fatal(http.ListenAndServe(":"+server.Port, mux))
}